Community
- Command Central
- MVP Program
- Monthly Mission
- Blogs
- Groups
- Events
- Media Vault
Products
- Observability
- Network Management
- Application Management
- IT Security
- IT Service Management
- System Management
- Database Management
Content Exchange
- SolarWinds Platform
- Server & Application Monitor
- Database Performance Analyzer
- Server Configuration Monitor
- Network Performance Monitor
- Network Configuration Manager
- SQL Sentry
- Web Help Desk
Free Tools & Trials
Store

Login Auditing

Just now noticed what appears to be a hole in the audit process. We've been adding user to the Orion Login page using NT Domain groups. From what I'm seeing there is no way to see what individual nt domain login under the group logged in. Orion just show that someone in the group logged in. This is pretty much a security hole in that whomever owns the NT Domain group could add someone that is not authorized and that login would be hidden from the Orion audit page. So this needs to be fixed. Also the audit info needs to be a bit more full featured, such as log on and log off times and possibly any RW functions that were performed such as changes to the nodes or interfaces

Find more posts tagged with

Status: None

Comments

adatole

That's not what I'm seeing. I see members of the domain group named with their login and logoff times. The image below, the "leon.adato" account is part of domain users, which is permitted to log in on the system in question. No accounts are explicitly given permissions.

Message Center 2014-08-25 11-49-36.png

jeffnorton

Ok color me ignorant. Where in Orion did you go to get a report like that

FormerMember

Will NPM 12.0 crack ?